Skip to content

BE: Support self-signed certs for OIDC #615

New issue
New issue
Closed
Closed
BE: Support self-signed certs for OIDC#615
Labels
area/authApp authentication related issuesscope/backendRelated to backend changesstatus/triage/completedAutomatic triage completedtype/enhancementEn enhancement/improvement to an already existing feature
@Haarolean

Description

@Haarolean
Haarolean
opened on Oct 15, 2024

Currently to achieve this one has to do mental gymnastics like this:

JAVA_OPTS: >-
        -Djavax.net.ssl.trustStore=/jmx/clienttruststore
        -Djavax.net.ssl.trustStorePassword=12345678

This happened due to:

  1. unifying truststore/keystore usage per cluster
  2. with 1) having no universal truststore/keystore applicable to non-clustered things (authentication, etc)

TODO:

  1. Implement an app-wide truststore/keystore support
  2. Use it for accessing:
  • OIDC endpoints
  • ?

Metadata

Metadata

Assignees

No one assigned

    Labels

    area/authApp authentication related issuesscope/backendRelated to backend changesstatus/triage/completedAutomatic triage completedtype/enhancementEn enhancement/improvement to an already existing feature

    Projects

    Up for grabs

    Status

    Done

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions